IT Audit Services
Independent and objective review of your IT infrastructure
Certified IT Auditors
Our IT Audit services provide an independent and objective review of IT infrastructure, control configuration, and regulatory compliance through in-depth testing and expert analysis. GraVoc’s auditors maintain a number of professional certifications including Certified Information Systems Auditor, Certified Information Security Manager, Certified Information Systems Security Professional, Certified in Risk and Information Systems Control, Microsoft Certified Professional and Certified Ethical Hacker. Our IT Audit service area expands throughout Massachusetts, Southern New Hampshire and New England.
IT Audit Services Include:
IT Audit Services
Our IT Audit service is an examination of the controls within an organization’s IT infrastructure. During the IT audit process, GraVoc Auditors evaluate the overall effectiveness of our client’s IT control environment to ensure these controls are properly configured to preserve the availability, confidentiality, and integrity of mission-critical systems and data.
The audit scope depends primarily on the size and scope of the client’s operation and the specific needs of the client. The project manager and auditors work directly with the client to ensure cost-effective and timely delivery of our auditing services.
IT General Controls Audit Service
Our IT General Controls Audit is an examination of the controls within an organization’s IT infrastructure. During the IT controls audit process, GraVoc IT Auditors collect and evaluate evidence of the client’s information systems controls, policies and procedures, and other related documentation to ensure the availability, confidentiality, and integrity of mission-critical systems and data. While the audit scope is constantly expanding and depends primarily on the size and scope of the client’s operation, GraVoc’s audit process analyzes three (3) fundamental control domains: 1. Proactive/Protective Controls 2. Detective Controls 3. Reactive/Corrective Controls. After completing the audit, GraVoc provides a report that documents significant findings.
Compliance Gap Analysis Service
The compliance review is an examination of existing controls, procedures, and policies against industry best practices and industry regulations surrounding cybersecurity and information security. GraVoc’s compliance review services help organizations determine their adherence to established state, federal, and industry guidelines.
GraVoc also provides a report identifying gaps and prioritizing areas of improvements, and providing solutions on how to bring the organization into compliance.
Awards
We are proud to have been awarded the “Best of” award by Banker & Tradesmen for our IT Audit and Information Security services.
Banking Consultant
Gold – 2017, 2018
Silver – 2016
Auditors
Gold – 2011, 2015
Banking Technology
Gold – 2017
Silver – 2015, 2016
Awards
We are proud to to have been awarded the “Best of” award by Banker & Tradesmen for our IT Audit and Information Security services.
Banking Consultant
Gold – 2017, 2018
Silver – 2016
Auditors
Gold – 2011, 2015
Banking Technology
Gold – 2017
Silver – 2015, 2016
Our certifications include…
CCNA Security
Cisco Certified Network Associate Security
CISM
Certified Information Security Manager
CISA
Certified Information Systems Auditor
CRISC
Certified in Risk and Information Systems Control
C|EH
Certified Ethical Hacker
CISSP
Certified Information Systems Security Professional
E|CIH
EC-Council Certified Incident Handler
MCP
Microsoft Certified Professional
Information Technology Audit Service Area
GraVoc is located in Peabody Massachusetts, just north of Boston, and provides Information Security services including IT Audit, IT General Controls Audit and Compliance Gap Analysis to businesses and organzations in the New England area. GraVoc’s Information Security Auditors hold certifications in CCNA Security, CISM, CISA, CRISC, C|EH, CISSP, and E|CIH. Below is a list of our Massachusetts and New Hampshire IT Audit service area. GraVoc also provides IT Audit services in Connecticut, Maine, Rhode Island and Vermont but are not limited to these states.
Massachusetts IT Audit Service Area:
Acton, Amesbury, Andover, Arlington, Ashby, Ashland, Ayer, Bedford, Belmont, Beverly, Billerica, Boston, Boxborough, Boxford, Burlington, Cambridge, Carlisle, Chelmsford, Chelsea, Concord, Danvers, Dracut, Dunstable, East Boston, Essex, Everett, Framingham, Georgetown, Gloucester, Groton, Groveland, Hamilton, Haverhill, Holliston, Hopkinton, Hudson, Ipswich, Lawrence, Lexington, Lincoln, Littleton, Lowell, Lynn, Lynnfield, Malden, Manchester by the sea, Marblehead, Marlborough, Maynard, Medford, Melrose, Merrimac, Methuen, Middleton, Nahant, Natick, Newbury, Newburyport, Newton, North Andover, North Reading, Peabody, Pepperell, Reading, Revere, Rockport, Rowley, Salem, Salisbury, Saugus, Sherborn, Shirley, Somerville, Stoneham, Stow, South Boston, Sudbury, Swampscott, Tewksbury, Topsfield, Townsend, Tyngsborough, Wakefield, Waltham, Watertown, Wayland, Wenham, West Newbury, Westford, Weston, Wilmington, Winchester, Winthrop and Woburn.
Our Massachusetts IT Audit Service Area Also Includes: Barnstable County, Berkshire County, Bristol County, Dukes County, Franklin County, Hamden County, Hampshire County, Nantucket County, Norfolk County, Plymouth County and Worcester County.
New Hampshire IT Audit Service Area:
Amherst, Andover, Atkinson, Auburn, Boscawen, Bow, Bradford, Brentwood, Candia, Canterbury, Chester, Concord, Danbury, Danville, Deerfield, Derry, Dunbarton, East Kingston, Epping, Epsom, Exeter, Franklin, Fremont, Greenland, Hampstead, Hampton Falls, Hampton, Henniker, Hill, Hooksett, Hopkinton, Kensington, Kingston, Loudon, Lyndeborough, New Castle, New London, Newbury, Newfields, Newington, Newmarket, Newton, Northfield, North Hampton, Northwood, Nottingham, Pembroke, Pittsfield, Plaistow, Portsmouth, Raymond, Rye, Salem, Salisbury, Sandown, Seabrook, South Hampton, Stratham, Sutton, Warner, Webster, Wilmot and Windham.
Our New Hampshire IT Audit Service Area Also Includes: Hillsborough County, Rockingham County and Cheshire County.
Information Security News
Security on Azure
During our VDI Explained webinar, our Director of Risk Management & Audit, Brian Brunelle, explored the security benefits of Microsoft Azure.
Security Benefits of VDI
Our Director of Risk Management & Audit, Brian Brunelle, explores the security benefits and advantages of VDI (Virtual Desktop Infrastructure).
Importance of Security Training During Pandemics
Members from our Information Security team breakdown the importance of security training during pandemics and why remaining vigilant is key.
GET IN TOUCH
Have a question or want to discuss our IT Audit services? Contact a GraVoc employee below by filling out the form!